Authorization and authentication based on an individual&#39;s social network

ABSTRACT

In particular embodiments, a method includes receiving a request to transmit content related to a first user to a second user, determining whether transmission of the content is authorized based on a list of unauthorized users, and transmitting the content to the second user if the transmission is authorized based on the list.

PRIORITY

This application is a continuation under 35 U.S.C. §120 of U.S. patentapplication Ser. No. 13/565,475, filed 2 Aug. 2012, which is acontinuation under 35 U.S.C. §120 of U.S. patent application Ser. No.10/897,766, filed 22 Jul. 2004, issued as U.S. Pat. No. 8,302,164 on 30Oct. 2012, each of which are incorporated herein by reference.

TECHNICAL FIELD

The present invention generally relates to authorizing activities andauthenticating individuals, and more specifically, to methods forauthorizing information flow to an individual and authenticating anindividual for access to information or service based on thatindividual's social network.

BACKGROUND

One of the major benefits of the Internet has been the ease ofcommunicating information to a large number of people. Some users have,however, been abusing this benefit by sending unwanted e-mailsolicitations, known as SPAM, to individuals over the Internet. Theproblem with SPAM has become so pervasive that some states have passedlegislation prohibiting SPAM.

Further, the open nature of the Internet has caused providers of contentand service over the Internet to place controls on who may access itscontent or service. The controls are sometimes unnecessarily restrictiveand the processes used to grant access tend to be overly cumbersome, tothe detriment of both users who might have benefited from the content orservice and providers who might have benefited from revenues generatedfrom these users.

SUMMARY OF PARTICULAR EMBODIMENTS

The invention provides a method of authorizing transmission of contentto an individual as a way to filter out unwanted communication such asSPAM or content that the individual might find to be offensive, and amethod of authenticating individuals for access to content or servicethat makes the content or service available to more users while limitingaccess to potentially abusive users of the content or service. Inparticular, a service provider examines an individual's social networkand a black list of persons that have been determined to beuntrustworthy to determine whether to authorize transmission of contentto that individual or authenticate that individual for access toinformation or service.

In a first embodiment of the invention, the authorization is performedin connection with an e-mail communication service. When an e-mailcommunication with an individual is attempted, that individual's socialnetwork is searched for a path between the sender and the individual. Ifthe path exists and the path does not traverse through unauthorizednodes, the e-mail communication is authorized. If there is no such path,the e-mail communication is prohibited.

In a second embodiment of the invention, the authorization is performedin connection with a search. When an individual enters a search query,the search engine retrieves relevant search results for delivery to theindividual. The search results that are delivered to the individual donot include content posted by those persons who are not connected to theindividual in the individual's social network through authorized nodes.

In a third embodiment of the invention, the service provider is a thirdparty content provider. When an individual requests access to thecontent provided by this entity, the entity examines its user base todetermine if any of its users is related to this individual. If there isa relationship and the individual and the related user are connectedthrough authorized nodes, the individual is given access. If not, accessis denied to the individual.

In a fourth embodiment of the invention, the service provider is alender. When an individual applies for a loan, the lender examines thecredit ratings of members of the individual's social network who areconnected to the individual through authorized nodes. If the averagecredit rating of these members is at least a minimum credit score, thelender continues to process the loan application. Otherwise, the loanapplication is rejected.

BRIEF DESCRIPTION OF THE DRAWINGS

So that the manner in which the above recited features of the presentinvention can be understood in detail, a more particular description ofthe invention, briefly summarized above, may be had by reference toembodiments, some of which are illustrated in the appended drawings. Itis to be noted, however, that the appended drawings illustrate onlytypical embodiments of this invention and are therefore not to beconsidered limiting of its scope, for the invention may admit to otherequally effective embodiments.

FIG. 1 is a diagram illustrating the relationships between members in asocial network.

FIG. 2 is a block diagram illustrating a system for providingrelationship information from a social network to an existing database.

FIG. 3 is a representation of the social network of FIG. 1 in a treeformat.

FIG. 4 is a sample black list used in the invention.

FIG. 5 is a sample gray list used in the invention.

FIG. 6 is a flow diagram that illustrates the steps carried out inauthorizing transmission of content to an individual.

FIG. 7 is a flow diagram that illustrates the steps carried out inauthenticating an individual for online access.

FIG. 8 is a sample white list used in the invention.

FIG. 9 is a flow diagram that illustrates the steps carried out inauthenticating an individual for access to a loan.

DETAILED DESCRIPTION

A social network is generally defined by the relationships among groupsof individuals, and may include relationships ranging from casualacquaintances to close familial bonds. A social network may berepresented using a graph structure. Each node of the graph correspondsto a member of the social network Edges connecting two nodes represent arelationship between two individuals. In addition, the degree ofseparation between any two nodes is defined as the minimum number ofhops required to traverse the graph from one node to the other. A degreeof separation between two members is a measure of relatedness betweenthe two members.

FIG. 1 illustrates a graph representation of a social network centeredon a given individual (ME). Other members of this social network includeA-U whose position, relative to ME's, is referred to by the degree ofseparation between ME and each other member. Friends of ME, whichincludes A, B, and C, are separated from ME by one degree of separation(1 d/s). A friend of a friend of ME is separated from ME by 2 d/s. Asshown, D, E, F and G are each separated from ME by 2 d/s. A friend of afriend of a friend of ME is separated from ME by 3 d/s. FIG. 1 depictsall nodes separated from ME by more than 3 degrees of separation asbelonging to the category ALL.

Degrees of separation in a social network are defined relative to anindividual. For example, in ME's social network, H and ME are separatedby 2 d/s, whereas in G's social network, H and G are separated by only 1d/s. Accordingly, each individual will have their own set of first,second and third degree relationships.

As those skilled in the art understand, an individual's social networkmay be extended to include nodes to an Nth degree of separation. As thenumber of degrees increases beyond three, however, the number of nodestypically grows at an explosive rate and quickly begins to mirror theALL set.

FIG. 2 is a block diagram illustrating a system for creating andmanaging an online social network. As shown, FIG. 2 illustrates a system100, including an application server 200 and graph servers 300. Thecomputers of system 100 are connected by a network 400, e.g., theInternet, and accessible by over the network by a plurality ofcomputers, collectively designated as 500. The application server 200manages a member database 210, a relationship database 220, and a searchdatabase 230.

The member database 210 contains profile information for each of themembers in the online social network managed by the system 100. Theprofile information may include, among other things: a unique memberidentifier, name, age, gender, location, hometown, references to imagefiles, listing of interests, attributes, and the like. The profileinformation also includes VISIBILITY and CONTACTABILITY settings, theuses of which are described in a commonly owned application, “System andMethod for Managing Information Flow Between Members of an Online SocialNetwork,” (U.S. patent application Ser. No. 10/854,057, issued as U.S.Pat. No. 8,010,458), filed May 26, 2004, the contents of which arehereby incorporated by reference. The relationship database 220 storesinformation defining to the first degree relationships between members.The relationship database 220 stores information relating to the firstdegree relationships between members In addition, the contents of themember database 210 are indexed and optimized for search, and stored inthe search database 230. The member database 210, the relationshipdatabase 220, and the search database 230 are updated to reflect inputsof new member information and edits of existing member information thatare made through the computers 500.

The application server 200 also manages the information exchangerequests that it receives from the remote computers 500. The graphservers 300 receive a query from the application server 200, process thequery and return the query results to the application server 200. Thegraph servers 3 manage a representation of the social network for allthe members in the member database 210. The graph servers 300 andrelated components are described in detail in a commonly ownedapplication, “System and Method for Managing an Online Social Network,”(U.S. patent application Ser. No. 10/854,054, issued as U.S. Pat. No.8,572,221), filed May 26, 2004, the contents of which are herebyincorporated by reference.

Graph servers 300 store a graph representation of the social networkdefined by all of the members (nodes) and their correspondingrelationships (edges). The graph servers 300 respond to requests fromapplication server 200 to identify relationships and the degree ofseparation between members of the online social network. The applicationserver 200 is further configured to process requests from a third partyapplication 610 to provide social network information (e.g., therelationships between individuals) for user records maintained in athird party database 620. The third-party application 610 makes therequests to the application server 200 through an applicationprogramming interface (API) 600. The methods by which the social networkinformation maintained in the system 100 is shared with a third party isdescribed in detail in a commonly owned application, “Method of SharingSocial Network Information with Existing User Databases,” (U.S. patentapplication Ser. No. 10/854,610, issued as U.S. Pat. No. 8,478,078),filed Jun. 14, 2004, the contents of which are hereby incorporated byreference.

FIG. 3 is a representation of the social network of FIG. 1 in a treeformat starting with member B at the top and showing all membersconnected to B Members P-U are not shown in FIG. 3 because they are notconnected to B in the social network of FIG. 1 G and H are shown twicebecause each is connected to B through two different paths C′, E′ and G′each collectively represents individuals who are identified in contactlists maintained by members C, E and G, respectively. These individualstypically are not members of the social network of FIG. 1. Other membersalso maintain contact lists, but for simplicity, it is assumed that onlyC, E and G have data stored in their contact lists. The contact listinformation includes name, address, telephone numbers, e-mail addresses,and similar types of information that are stored in contact managementsoftware such as Outlook® and ACT!®.

The present invention will be illustrated with the following fourexamples: (1) authorizing an individual to communicate with a member ofthe social network (by way of e-mail, instant messaging, text messaging,voicemail, and other similar means); (2) authorizing content madeavailable by an individual to be transmitted to a member of the socialnetwork for viewing; (3) authenticating a member of the social networkfor access to online content; and (4) authenticating a member of thesocial network for access to a loan. In each of these examples, thedecision on whether to authorize the information flow to B (examples 1and 2), or to authenticate B for access to information or service(examples 3 and 4), will be based on a black list and B's socialnetwork.

A black list used in authorizing information flow to a member (examples1 and 2), or in authenticating the member for access to a loan (example4) is defined with respect to the member. In the example given here, asingle black list is maintained for a member. However, the black listmay be defined separately for different types of activity. For example,the black list used in authorizing e-mail communication to B may bedifferent from the black list used in authorizing content made availableby an individual to be transmitted to B for viewing.

A black list that is defined with respect to a member is typicallyupdated by that member. For example, if B received an unwantedcommunication (e.g., SPAM) from D and L, or while browsing profiles ofother members in the social network, came across D's content and L'scontent that B found to be offensive, B will add D and L to its blacklist. This black list is shown in FIG. 4.

A black list used in authenticating a member for access to onlinecontent or service (example 3) is defined globally with respect toeveryone seeking access, but it is maintained separately for eachdifferent online content/service provider. For example, a black listused in authenticating a member for access to information or servicemade available by a provider ABC is different from a black list used inauthenticating a member for access to information or service madeavailable by provider XYZ. This type of black list is typically updatedby the provider of the information or service. For example, if the blacklist shown in FIG. 4 is ABC's black list, this would signify that ABChad previously determined that D and L abused their online accessprovided by ABC and added D and L to its black list.

A gray list is derived from a black list and the social network of themember with respect to whom authorization and authentication is beingcarried out. In examples 1, 2 and 4, the gray list is derived from theblack list of member B and B's social network. In example 3, the graylist is derived from the black list of the provider of content orservice to which member B is seeking access and B's social network. Thegray list simply includes all members of B's social network who are onedegree separated from any member of B's social network who is on theblack list. The gray list derived from the black list of FIG. 4 and thesocial network of FIG. 1 would include C, I, J, F, and M, and is shownin FIG. 5.

Alternatively, the gray list may be limited to all members of B's socialnetwork who are: (i) one degree separated from any member of B's socialnetwork who is on the black list, and (ii) included in a path betweenthe black list member and the member with respect to whom authorizationand authentication is being carried out. The gray list derived in thismanner would include members C and F, but not members I, J and M.

Individuals identified in the gray list of a member becomenon-traversing nodes with respect to that member. A “non-traversingnode” with respect to a member is a node through which a connection tothe member cannot be made. For example, referring to FIG. 3 and usingthe gray list of FIG. 5, a connection from B to E cannot be made becausethe path from B to E traverses through C, who is on the gray list and isa non-traversing node. The connection from B to C, on the other hand,can be made because the path from B to C ends at C and does not traverse“through” C.

FIG. 6 is a flow diagram that illustrates the steps carried out inauthorizing an e-mail communication from A to B or authorizingtransmission of A′s content to B (e.g., in connection with delivery ofsearch results in response to a search query by B). In Step 610, a blacklist that is maintained for B and used in authorizing e-mailcommunication with B is retrieved. In Step 620, the black list issearched for A. If A is identified in the black list, the informationflow to B is prohibited (Step 670). Otherwise, a gray list is derivedfrom the black list and B's social network (Step 630). In Step 640, abreadth first search (or alternatively, a depth first search) isconducted on B's social network to find paths from B to A. Optionally,the breadth first search could be limited to members who are within amaximum degree of separation value specified by the member (signifyingthat the member does not wish to receive communication from, or reviewcontent posted by, other members who are too far removed) or by theoperator of the social network (as a way to conserve computingresources). If there is any path from B to A that does not pass througha non-traversing node (i.e., an individual in the gray list), theinformation flow to B is authorized (Step 660). Otherwise, theinformation flow to B is prohibited (Step 670).

In the example given above, the party that is providing the e-mailcommunication service and the search engine service and carrying out theauthorizations is the operator of B's social network. The invention isapplicable to situations where the party that is providing the e-mailcommunication service and the search engine service and carrying out theauthorizations is a third party that has access to the databasecontaining B's black list and information about B's social network. Insuch a case, the third party will retrieve B's black list and a graphrepresentation of B's social network from this database in accordancewith the methods described in the application, “Method of Sharing SocialNetwork Information with Existing User Databases,” (U.S. patentapplication Ser. No. 10/854,610, issued as U.S. Pat. No. 8,478,078),filed Jun. 14, 2004. The third party carries out the remaining stepsdescribed above (Steps 620-670) in the same manner.

Also, a person who is not a member of B's social network may bepermitted to communicate with B, if the person is identified in acontact list of a member who is not identified in the gray list andconnected to B along a path that does not pass through a non-traversingnode. For example, referring to FIG. 3, G′ will be able to send e-mailto B because G′ is identified in the contact list of G who is notidentified in the gray list and none of the nodes connecting G to B arenon-traversing nodes. By contrast, C′ will not be able to send e-mail toB because C is identified in the gray list; and E′ will not be able tosend e-mail to B because the only path from E to B is through anon-traversing node (C).

In an alternative embodiment, a white list identifying all members ofB's social network who are authorized to transmit content to B may begenerated, either real-time or off-line as a batch process, and searchedeach time content transmission to B is attempted. The white listgenerated in this manner includes all members of B's social network whoare connected to B along a path that does not traverse through a memberidentified in B's gray list, and e-mail addresses stored in the contactlists of members who are identified in the white list and not in thegray list. The white list can be further narrowed by limiting it tothose members who are within a maximum degree of separation from B,where the maximum degree of separation may be specified by either B orthe operator of the social network.

FIG. 7 is a flow diagram that illustrates the steps carried out inauthenticating B for access to an online service provided by a thirdparty. In Step 710, the service provider receives a request for accessfrom B. The request includes certain identifying information of B, suchas B's e-mail address. In Step 720, in accordance with the methodsdescribed in the application, “Method of Sharing Social NetworkInformation with Existing User Databases,” (U.S. patent application Ser.No. 10/854,610, issued as U.S. Pat. No. 8,478,078), filed Jun. 14, 2004,this service provider makes a request to a social network database for agraph representation of B's social network and receives the graphrepresentation of B's social network. In Step 730, a black list that ismaintained by this service provider is retrieved. In Step 740, a graylist is derived from the black list and B's social network. In Step 750,a breadth first search (or alternatively, a depth first search) isconducted on B's social network to generate a white list. All members ofB's social network who are connected to B along a path that does nottraverse through any unauthorized nodes (i.e., individuals identified inthe gray list) get included on this white list. FIG. 8 shows the whitelist generated from B's social network shown in FIG. 3 if the gray listshown in FIG. 5 corresponds to the gray list derived in Step 740. If anyindividual identified in the white list is in the user database of thisservice provider (Step 760), B's online access is authenticated (Step770). Otherwise, B's online access is denied (Step 780).

FIG. 9 is a flow diagram that illustrates the steps carried out inauthenticating B for access to a loan. In Step 910, the lender receivesa request for a loan from B. The request includes certain identifyinginformation of B, such as B's e-mail address. In Step 920, in accordancewith the methods described in the application, “Method of Sharing SocialNetwork Information with Existing User Databases,” (U.S. patentapplication Ser. No. 10/854,610, issued as U.S. Pat. No. 8,478,078),filed Jun. 14, 2004, this lender makes a request to a social networkdatabase for a graph representation of B's social network and receivesthe graph representation of B's social network. In Step 930, a blacklist that is maintained for B is requested and received from the socialnetwork database in the same manner as in Step 920. In Step 940, a graylist is derived from the black list and B's social network In Step 950,a breadth first search (or alternatively, a depth first search) isconducted on B's social network to generate a white list. All members ofB's social network who are connected to B along a path that does nottraverse through any unauthorized nodes (i.e., individuals identified inthe gray list) get included on this white list. Optionally, the lendermay specify a maximum degree of separation value (e.g., N_(max)). If itis specified, the white list will include only those members of B'ssocial network who are within N_(max) degrees of separation from B. InStep 960, the credit ratings of individuals in the white list areretrieved and weighting factors are applied to the credit ratings basedon the degree of separation between the individual and B. As an example,a weighting factor of 1/10^(N) may be applied to the credit ratings,where N is the degree of separation between the individual and B. If theaverage credit rating is above a minimum score, B is authenticated andthe processing of B's loan application is permitted to proceed (Steps970 and 980). If not, B is not authenticated, and B's loan applicationis rejected (Steps 970 and 990).

The above examples of the white list, the black list, and the gray liststore member identifiers (e.g., A, B, C, etc.) to identify members ofthe social network. Other identifying information, such as e-mailaddresses, may be stored in these lists. In cases where the listsidentify persons who are outside the social network, the e-mail addressis stored in place of the member identifier. For example, a SPAM e-mailaddress, not corresponding to any e-mail address within the socialnetwork, may be added to a member's black list. Any future attempts tosend e-mail from this e-mail address will be prohibited pursuant to thedecision block in Step 620 of FIG. 6. Also, if the SPAM e-mail addressadded to the member's black list corresponds to an e-mail address storedin a contact list maintained by a person in the social network, the graylist that is derived from this black list will include the memberidentifier corresponding to the person who has the blacklisted e-mailaddress in his or her contact list.

While particular embodiments according to the invention have beenillustrated and described above, those skilled in the art understandthat the invention can take a variety of forms and embodiments withinthe scope of the appended claims.

What is claimed is:
 1. A method comprising: receiving, at a serviceprovider, a request from a first user to access content on the serviceprovider, the request identifying a user identifier (ID) of the firstuser; transmitting, to a social networking system that is external tothe service provider, a request to determine whether the first user isauthorized to access content on the service provider based on a graylist comprising user IDs of the users who are not authorized to accesscontent on the service provider, wherein the gray list is based on ablack list; and permitting, at the service provider, the content to beaccessed by the first user if an indication is received from the socialnetworking system that the first user is authorized to access thecontent based on the gray list.
 2. The method of claim 1, furthercomprising: accessing a graph structure comprising a plurality of nodesand a plurality of edges connecting the nodes, each of the edges betweentwo of the nodes representing a single degree of separation betweenthem, the nodes comprising a first-user node corresponding to the firstuser and a second-user node corresponding to a second user.
 3. Themethod of claim 2, wherein the content is related to the second user. 4.The method of claim 3, wherein the content comprises an email, instantmessage, text message, or voicemail from the second user.
 5. The methodof claim 2, further comprising: accessing a white list comprising afirst set of user IDs of a first set of users, each user of the firstset of users corresponding to a user associated with the serviceprovider; and authenticating the first user to access content on theexternal service provider if the first-user node is connected in thegraph structure to one or more nodes corresponding to users of the firstset of users by a series of nodes and edges that does not comprise anode corresponding to a user on the gray list.
 6. The method of claim 2,further comprising: accessing the black list comprising a first set ofuser IDs of a first set of users; wherein the gray list comprises asecond set of user IDs of a second set of users, each of the nodescorresponding to the users in the second set of users being separated inthe graph structure from at least one of the nodes corresponding to theusers in the first set of users by only one degree of separation.
 7. Themethod of claim 2, further comprising: accessing the black listcomprising a first set of user IDs of a first set of users; wherein thegray list comprises a second set of user IDs of a second set of users,each of the nodes corresponding to the users in the second set of usersbeing separated in the graph structure from at least one of the nodescorresponding to the users in the first set of users by a thresholddegree of separation.
 8. The method of claim 7, further comprising:determining whether transmission of the content is authorized based onthe gray list; and authorizing transmission of the content to the firstuser if the first-user node and the second-user node are connected toeach other in the graph structure by a series of edges and nodes thatdoes not comprise a node corresponding to a user in the first set ofusers or the second set of users.
 9. The method of claim 7, wherein thegray list further comprises a third set of user IDs of a third set ofusers, the nodes corresponding to the users of the third set of usersbeing connected to either the first-user node or the second-user node inthe graph structure by a series of edges and nodes that comprises a nodecorresponding to a user in the first set of users or the second set ofusers.
 10. The method of claim 2, wherein the gray list comprises afirst set of user IDs of a first set of users, the nodes correspondingto the users of the first set of users being connected to either thefirst-user node or the second-user node in the graph structure through aseries of edges and nodes that comprises an unauthorized node.
 11. Themethod of claim 1, further comprising: accessing the black listcomprising a first set of user IDs of a first set of users.
 12. Themethod of claim 11, wherein the black list comprises user IDs of theusers whose content is not authorized to be transmitted to the firstuser.
 13. The method of claim 11, wherein the black list comprises userIDs of the users who are not authorized to view content associated withthe service provider.
 14. The method of claim 1, wherein the contentcomprises an e-mail communication.
 15. The method of claim 1, whereinthe content comprises profile information of a user of the serviceprovider.
 16. The method of claim 1, wherein the content comprisescontent posted by a user of the service provider.
 17. The method ofclaim 1, further comprising: authorizing transmission of the content tothe first user if the gray list does not comprise a user ID of the firstuser.
 18. The method of claim 1, further comprising: prohibitingtransmission of the content to the first user if the transmission is notauthorized.
 19. A service provider system comprising: one or moreprocessors; and one or more servers having a memory storingcomputer-executable instructions that when executed by one or more ofthe processors cause the processors to: receive, at the serviceprovider, a request from a first user to access content on the serviceprovider, the request identifying a user identifier (ID) of the firstuser; transmit, to a social networking system that is external to theservice provider, a request to determine whether the first user isauthorized to access content on the service provider based on a graylist comprising user IDs of the users who are not authorized to accesscontent on the service provider, wherein the gray list is based on ablack list; and permit, at the service provider, the content to beaccessed by the first user if an indication is received from the socialnetworking system that the first user is authorized to access thecontent based on the gray list.